MidSize NBFC– Migration & Modern of FinTech to AWS (On-Premise to AWS)
Challenges:Customer provides leading platform for NBFCs and FinTech to manage their LOS, LMS, KYC,Collections and Analytics. Their current platform is Monolithic legacy application to microservices based Architecture. Customer partnered with Kube8Cloud to Re-Architect, Re-Platform, Migrate and Deploy their applications and databases on AWS.
The existing Applications were Monolithic with most of the Application code and database components hosted on VMs. As part of migration and modernization, Kube8Cloud recommended the Customer to Re-Architect, Re-platform, then migrate their applications, databases and help them deploy the application adhering to security standards.
Key goals of the new architecture for Application & Database:
- Build highly scalable Frontend and Backend
- Adopt Microservices Architecture
- Up to 99% SLA on database uptime
- Encrypt data in transit and at rest
- Want to get rid IT of the overhead of managing databases
- DevOps for faster deployment
- Automated Patching and upgrades.
Kube8Cloud Solution:
Kube8Cloud & Customer had several brainstorming sessions and deep dive sessions to understand As-Is application Architecture. We have agreed to host the microservices in AWS ECS, as it is quick to adapt. ECS provides native integration with AWS Services and easy to implement IAM Policies for RBAC. AWS RDS Aurora for MySQL was used for the Database. The high-level architecture and implementation is as follows:
- Create VPC for all the AWS Resources
- Create ECS Cluster
- Define Tasks for each Microservices
- Enable CloudWatch Monitoring
- Create Amazon RDS Aurora Database
- Configured Multi-AZ for High Availability
- Encrypted Data at Rest using AWS CMK
- Encrypted Data in Transit by using SSL
- Create Jenkins for DevOps
- Create CI/CD DevOps Pipeline
- Migrated using Backup and Restore Approach
- Enabled Automated Snapshots with 15 days retention
- Chosen Maintenance Window for automated Patching and upgrades
Business Impact:
- Highly Scalable front-end & back-end
- Enhanced Database Security
- Reduced the burden of managing the databases
- Achieved 99.99 % availability of databases
- Redesigned the architecture helped the team to handle the peak load without any timeout errors
- Helped to achieve GDPR compliant Infrastructure
AWS services leveraged in this deployment:
- AWS ECS
- AWS RDS
- KMS
- AWS IAM
- AWS S3
- Application and Network Load Balancer
- VPC Private endpoints
- AWS Certificate manager for SSL certificates
- CloudTrail
- CloudWatch
- AWS Lambda
- API Gateway
- AWS CloudFormation
